Commit Graph

15647 Commits (b71b58c6e43e991b23bdbbca53ca2313eb5d8bc9)

Author SHA1 Message Date
chrisr3d b71b58c6e4 Merge branch '2.4' of https://github.com/MISP/MISP into 2.4 2020-07-17 18:34:09 +02:00
chrisr3d d1141caa0d
chg: Bumped latest misp-opendata updates 2020-07-17 18:27:51 +02:00
chrisr3d f6b6e40668 Merge branch '2.4' of https://github.com/MISP/MISP into 2.4 2020-07-17 18:25:24 +02:00
mokaddem 68d4e4547e
chg: [events:index] Renamed `org` into `creator org`. Fix #6012 2020-07-17 15:40:37 +02:00
chrisr3d 824f03f0dc
chg: [opendata export] Support of the search functionality + fixed url parameter used in the delete feature 2020-07-16 23:35:44 +02:00
chrisr3d e410bdf8e9 Merge branch '2.4' of https://github.com/MISP/MISP into 2.4 2020-07-16 23:30:47 +02:00
Jakub Onderka 18088dbf89
Merge pull request #6099 from JakubOnderka/idn-support
new: [attribute] Add support for IDN domains
2020-07-16 19:43:42 +02:00
Jakub Onderka 91a1913fed new: [attribute] Add support for IDN domains 2020-07-16 17:23:49 +02:00
Jakub Onderka ea8d5a7784
Merge pull request #6112 from JakubOnderka/attr-fetch-optim
Attr fetch optim
2020-07-16 16:50:29 +02:00
iglocska 17c46a8b25
fix: [sync] internal sync now correctly syncs local tags
- also fixes a notice about a missing tag in the sync
2020-07-16 10:56:32 +02:00
chrisr3d af502028c5 Merge branch '2.4' of https://github.com/MISP/MISP into 2.4 2020-07-15 17:11:42 +02:00
chrisr3d e0cb24ed9f
chg: [misp-opendata] Bumped latest version 2020-07-15 17:10:56 +02:00
mokaddem 88806caca4
fix: [galaxyClusters:view] Fixed full_group_by issue when viewing the
galaxy matrix
2020-07-15 16:07:55 +02:00
Jakub Onderka 5fc0fb0f68
Merge pull request #6119 from MISP/JakubOnderka-patch-1
fix: [UI] Show proper menu when editing event info
2020-07-15 10:32:21 +02:00
Christophe Vandeplas 93c902e073
fix: [attributes:massEdit] proposal option not by default
this way we do not change the default behavior which was changed in commit 9b33476eed
2020-07-15 09:57:26 +02:00
Loïc Fortemps 4f8140cd33
Additionnal protection against XSS, the response type defaults to html while it should be JSON. (#6118) 2020-07-14 17:26:57 +02:00
Jakub Onderka 0e9c3e05b2
fix: [UI] Show proper menu when editing event info 2020-07-14 16:43:25 +02:00
Jakub Onderka c161e25372
Merge pull request #6117 from JakubOnderka/delete-object-proposal
fix: [proposals] Delete proposals for object attributes
2020-07-14 16:01:58 +02:00
iglocska c0bc1a0c67
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2020-07-14 14:33:39 +02:00
iglocska b3550b48f3
fix: [security] xss fix missing part of solution
- the previous fix to the xss in the homepage setter was lacking the controller changes due to a partial commit (#bf4610c947c7dc372c4078f363d2dff6ae0703a8)

  - as originally discovered by Mislav Božičević <mislav.bozicevic@nn.cz>
  - persistence of the vulnerability after the lacking fix reported by DIEGO JURADO PALLARES from Ciberinteligencia
2020-07-14 14:26:11 +02:00
Christophe Vandeplas 1c3898c2b8
fix: minor typo 2020-07-14 14:20:20 +02:00
Steve Clement 8bbce5bdf8
fix: [installer] Installer was broken, now fixed 2020-07-15 04:14:19 +09:00
Jakub Onderka c2faaca1a3 fix: [proposals] Delete proposals for object attributes 2020-07-14 12:34:29 +02:00
Steve Clement 02012e3881
Merge pull request #6116 from SteveClement/guides 2020-07-14 19:13:52 +09:00
Steve Clement 9fef5378df
fix: [bug] Check for non-existen directory fails if exists 2020-07-15 03:52:25 +09:00
Jakub Onderka dc03e8fd24
Merge pull request #6114 from JakubOnderka/remove-cidr
fix: [internal] Remove unused CidrComponent and CIDRTool classes
2020-07-14 12:06:13 +02:00
Jakub Onderka db7f471a6a fix: [internal] Remove unused Event::setSimpleConditions method 2020-07-14 10:34:52 +02:00
Jakub Onderka 39f3acba34 fix: [internal] Remove unused CidrComponent and CIDRTool classes 2020-07-14 10:29:32 +02:00
Jakub Onderka 3afcf1e070
Merge pull request #5929 from JakubOnderka/fuzzy-purge
fix: [correlations] Purge ssdeep table after attribute delete
2020-07-13 22:48:10 +02:00
chrisr3d f9e4857422
fix: [opendata export] Adding auth param in the python command only if not empty 2020-07-13 22:26:02 +02:00
Jakub Onderka 2978d17313
Merge pull request #6113 from JakubOnderka/freetext-fixes-vol2
chg: [freetext] Various code fixes and optimisations
2020-07-13 21:28:28 +02:00
Jakub Onderka 3df94f868f chg: [freetext] Various code fixes and optimisations 2020-07-13 21:12:26 +02:00
chrisr3d 92910dd1f7
chg: [opendata export] Parsing portal url parameter + slight parameters parsing changes
- As the possibility of specifying the url of the
  Open data portal to use instead of the default
  one, we support here this parameter and adapt
  the way we build the command that will launch
  the python script
- Slight changes to replace some isset tests by
  empty tests to make sure the concerned fields
  are not only set, but also contain a value
2020-07-13 21:02:25 +02:00
Jakub Onderka 80c8249b20
Merge pull request #6085 from JakubOnderka/event_log_fix
fix: [audit] Show all attribute changes in event history
2020-07-13 18:00:53 +02:00
Jakub Onderka c9b024e220 chg: [internal] Faster checking if warninglist already exists for event 2020-07-13 17:53:09 +02:00
Jakub Onderka 60207d9a80 chg: [internal] Initialize FinancialTool just when necessary 2020-07-13 17:52:16 +02:00
Jakub Onderka 9f8a198eaa
Merge pull request #6091 from JakubOnderka/existence-checking
fix: [internal] Do not check event existence twice
2020-07-13 17:31:30 +02:00
Jakub Onderka 7f2f4d84c4
Merge pull request #6097 from JakubOnderka/freetext-fixes
fix: [freetext] Handle IPv6 and punycode domains when import
2020-07-13 17:26:41 +02:00
Steve Clement 5190346509
Merge branch 'guides' of github.com:SteveClement/MISP into guides 2020-07-14 00:15:16 +09:00
Jakub Onderka a34141c099 chg: [internal] More tests for ComplexTypeTool::checkFreeText 2020-07-13 15:29:17 +02:00
iglocska ded8ed50a5
chg: [version] bump 2020-07-13 15:01:28 +02:00
iglocska a940e943d5
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2020-07-13 12:34:52 +02:00
Steve Clement ad0587fb71
fix: [installer] Update to latest 2020-07-14 00:17:32 +09:00
Jakub Onderka 06c7af4f83 chg: [internal] Simplified ComplexTypeTool::checkFreeText 2020-07-13 12:24:52 +02:00
iglocska bf4610c947
fix: [security] setting a favourite homepage was not CSRF protected
- a user could be lured into setting a MISP home-page outside of the MISP baseurl
- switched the endpoint to be CSRF protection enabled

- as discovered by Mislav Božičević <mislav.bozicevic@nn.cz>
2020-07-13 12:19:11 +02:00
Jakub Onderka e908a80656 fix: [internal] Reduce number of regexp in refang table 2020-07-13 10:13:26 +02:00
Andras Iklody 784ee2b206
Merge pull request #6110 from RichieB2B/ncsc-nl/unlink
fix: [StixExport] suppress unlink warnings
2020-07-12 16:49:05 +02:00
Richard van den Berg 36dafcf8e4 fix: [StixExport] suppress unlink warnings 2020-07-11 20:06:18 +02:00
Andras Iklody f51cdd9c67
Merge pull request #6109 from RichieB2B/nscc-nl/stixfix
fix: [stix export] log stack trace on error, support 'AMBER NATO ALLI…
2020-07-10 23:51:24 +02:00
Richard van den Berg d0d233dfd0 fix: [stix export] log stack trace on error, support 'AMBER NATO ALLIANCE' TLP tags 2020-07-10 21:12:27 +02:00